$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: 6biJh1ENa/HK9pvVADGoG1P7b8LkWbjboUIE03W5OCI= Subject key identifier: B9:E0:0B:11:9F:EB:8F:7A:9A:96:82:C1:E0:B0:70:B2:5A:33:33:03 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 08D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0835 Signing time: Sat 28 Feb 2026 21:56:43 +0000 Manifest this update: Sat 28 Feb 2026 21:56:42 +0000 Manifest next update: Sat 07 Mar 2026 21:56:42 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: qkLIJV8bLpM2WSgfDjV291f59tS9x3b4yAkEpyOQQTo=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: f0ESpBI7HotOKBr13FcAV5TT3P1E2zyNwdxux8geFnE=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: NcFU9nIukNqWapzOgILub1CjThLV7JqL3te0H7Flve8=) 4: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: Rf2OB0gbO9TU9XhcIRlFWi1S/4ci6e0SOPcukNmd0Hg=) 5: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: JQf03DKtF4s8gNb4T6clUFJaoPr3oWIM7RgNuCy+qtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Feb 28 21:56:42 2026 GMT Not After : Mar 7 21:56:42 2026 GMT Subject: CN=69a3649b-ffdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:22:07:4c:ec:8f:e4:9c:66:f2:53:18:4e: 71:1d:27:c6:73:03:20:9f:80:f0:b4:11:f6:18:ec: 9b:ba:88:4d:32:a8:ce:a8:d7:f6:3f:1d:dd:04:ce: 84:24:48:13:28:7a:ba:86:96:a2:45:a0:8b:8d:bf: 2e:0d:cf:41:77:b6:50:03:09:bf:68:5a:35:73:d9: e2:38:4c:fe:8f:1f:89:4e:76:05:53:35:d8:09:5b: 0c:97:9d:a6:98:ab:b0:60:9d:f8:9e:87:75:3c:57: 60:84:7e:35:7b:dd:ef:c5:9b:50:9a:d4:06:9f:26: 81:74:3a:4f:4c:9d:6d:75:81:5e:6b:c9:7c:91:ba: 2f:b7:89:2a:f2:4a:48:89:f7:38:10:fd:06:1e:9d: 69:ca:f4:d8:65:4a:e3:d5:ff:17:82:b5:fa:ac:a9: a1:68:1c:c8:8f:a2:a1:10:61:90:39:95:89:92:ba: 6c:4d:d1:66:ce:c2:b9:ae:99:2f:9a:37:83:d2:bb: 81:d7:e6:0b:27:fa:e0:f8:6d:e6:51:a5:35:5b:9f: 08:25:9e:a0:e8:df:a2:1b:55:6c:42:dd:58:aa:84: b6:56:ac:49:58:1f:df:7f:b1:ec:13:0a:91:6e:9c: 5a:0f:03:2d:70:52:63:82:0e:5b:68:f0:cb:9c:93: d1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E0:0B:11:9F:EB:8F:7A:9A:96:82:C1:E0:B0:70:B2:5A:33:33:03 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:6a:aa:d8:54:9f:8d:8f:a3:65:24:55:b5:18:22:d1:bc:53: 03:11:8c:2b:b4:a2:f8:b6:6c:f0:cd:17:c4:69:9f:7c:5d:29: 12:bf:79:46:3b:61:b3:88:f8:04:55:fc:97:95:13:17:ef:d7: dd:ed:d7:2d:4b:5f:8e:df:f7:62:5d:c2:25:0c:e5:6a:95:e6: d9:9f:a0:98:34:ca:1a:56:88:2f:51:69:9d:3a:9c:19:81:53: 0e:23:ab:aa:52:96:20:cc:85:fc:92:81:65:eb:4e:e2:8a:44: 6a:a9:8a:d4:fa:14:cf:82:78:21:f2:3d:5c:80:42:42:28:50: 62:ef:0a:59:a7:e5:d1:cf:dd:de:af:1d:1e:fe:13:21:f7:b2: c8:87:98:3f:68:f9:c0:a1:a1:14:1a:08:70:00:59:a4:99:5b: 14:5a:c0:09:a5:91:12:80:e4:2b:71:45:39:10:10:bd:34:98: 7e:f3:10:87:25:5f:77:42:37:35:03:51:90:03:f6:d9:ac:00: ca:fa:8f:e9:e8:43:79:63:f0:bd:f1:06:93:11:c4:42:7b:55: 9c:54:01:97:a1:3b:6e:11:53:f5:a6:31:95:25:97:7a:e1:4f: 2a:ed:93:c0:3f:e4:11:2d:21:51:75:23:52:2b:02:96:9e:0a: 19:08:12:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjYwMjI4MjE1NjQyWhcNMjYwMzA3MjE1NjQyWjAYMRYwFAYD VQQDDA02OWEzNjQ5Yi1mZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQoiB0zsj+ScZvJTGE5xHSfGcwMgn4DwtBH2GOybuohNMqjOqNf2Px3dBM6E JEgTKHq6hpaiRaCLjb8uDc9Bd7ZQAwm/aFo1c9niOEz+jx+JTnYFUzXYCVsMl52m mKuwYJ34nod1PFdghH41e93vxZtQmtQGnyaBdDpPTJ1tdYFea8l8kbovt4kq8kpI ifc4EP0GHp1pyvTYZUrj1f8XgrX6rKmhaBzIj6KhEGGQOZWJkrpsTdFmzsK5rpkv mjeD0ruB1+YLJ/rg+G3mUaU1W58IJZ6g6N+iG1VsQt1YqoS2VqxJWB/ff7HsEwqR bpxaDwMtcFJjgg5baPDLnJPRGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLngCxGf 6496mpaCweCwcLJaMzMDMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABGqq2FSfjY+jZSRVtRgi0bxTAxGMK7Si+LZs8M0XxGmffF0pEr95Rjths4j4 BFX8l5UTF+/X3e3XLUtfjt/3Yl3CJQzlapXm2Z+gmDTKGlaIL1FpnTqcGYFTDiOr qlKWIMyF/JKBZetO4opEaqmK1PoUz4J4IfI9XIBCQihQYu8KWafl0c/d3q8dHv4T IfeyyIeYP2j5wKGhFBoIcABZpJlbFFrACaWREoDkK3FFORAQvTSYfvMQhyVfd0I3 NQNRkAP22awAyvqP6ehDeWPwvfEGkxHEQntVnFQBl6E7bhFT9aYxlSWXeuFPKu2T wD/kES0hUXUjUisClp4KGQgS3w== -----END CERTIFICATE-----Generated at Sun Mar 1 23:57:39 2026 by rpki-client